One management console has all your tools and takes care of Windows, Mac, Linux and UNIX.

Helps you fix problems fast and clean up remote computers.

Get instant reports and schedule them to send automatically.

You'll get automatic alerts, and you can create and apply policies.

The role-based administration lets you offload some daily tasks.

Synch up with Active Directory and get rid of your old security products.

Get a look at guest computers before you let them onto your network.

The research teams at SophosLabs fine-tune protection and send you the newest threat updates.

Device control

Device control technology is built into Endpoint Protection. It helps you reduce the risk of data loss and malware infection by giving you control of removable devices like USB keys, drives and wireless networking devices. You can control device use with the client that scans for malware and controlled applications.

Set a block or allow policy for different groups of computers - for example, allow the use of encrypted USB keys for senior managers, and block use for everyone else

Monitor, manage and report on device usage in the console alongside virus, firewall and application control alerts

It¿s all integrated into Endpoint 10, no separate deployment, agent, or console required.

Application control

Control thousands of applications that can cause security or legal problems, like P2P or instant messaging. And you'll get a handle on the unwanted applications that clog your network. Application control is built into Endpoint Protection so you can monitor and control what your employees are installing without interfering with their work. Best of all, it's very simple. Just define the category or specific application you want to control and Sophos take care of the rest.

Sophos have built application control into the antivirus engine, so you don¿t have to deploy or manage a separate product.

They detect thousands of applications, in over 50 categories, and Sophos experts continuously make updates with new versions and new applications.

You simply set policies for the whole company or specific groups to block or allow particular applications.

Use application control to switch off peer-to-peer software, but allow remote users to use it. Or standardise on a single Internet browser.

Data control

A unique and simple approach to data loss prevention integrates the scanning for sensitive information into the antivirus engine on both the endpoint and email appliances. This makes it easier for you to configure, deploy and manage. And it means you won't need separate DLP solutions on the endpoint and mail gateway.

Reduce the impact on system performance with a single agent that scans for sensitive data as well as malware.

Prevent transfers of sensitive data to removable storage devices, applications such as browsers and instant messaging clients, or in email.

Centrally manage data control policies and deploy across your entire estate or to specific groups.

Implement data protection out of the box with pre-packaged data definitions, including bank account and social security numbers, supplied by and updated by SophosLabs.

Easily customise your content control lists and keep them consistent across your endpoints and email gateway.

Network Access Control (NAC) checks computers accessing your network - even those not owned by the company - to ensure full compliance with your security policies. NAC makes sure computers, including roaming laptops, are running antivirus, firewalls, and other security applications, that OS service packs are up to date and that Windows Update is active.